read-github

SUSPICIOUS: the stated purpose matches repository reading, but the skill shifts access from official GitHub surfaces to a third-party hosted MCP service and includes arbitrary URL fetching from documentation. That footprint is somewhat broader than a simple GitHub reader and introduces moderate data-flow and prompt-injection risk, though there is no clear malware behavior or credential harvesting in the provided text.